t Obion, Spivak, et al. _ 
\ 703-413-3000 S05P0027 

V 

TO 



Pocket # 29221^U^8J<£T 



"Sheet 1 of 12 



FIG. 1 




MOBILE DEVICE 




ANTENNA L RW 



Vrw 

M ► 



MODULATOR/ 
DEMODULATOR 



PROCESSOR 




CARD READER/WRITER 



TO HOST 



Obion, Spivak, et al. 

703-413-3000 

Docket # 292218I«8P<anPp 

Sheet 2 of 12 1 1 *~ 



S05P0027 




Obion, Spivak, et al. 
703-413-3000 

Docket # 292218US£ftdM 9 
Sheet 3 of 12 



S05P0027 




CNJ 
LO 



Obion, Spivak, et al. 
703-413-3000 a jAry 
Docket # 292218lft8ParZ 
Sheet 4 of 12 



FIG. 4 



S05P0027 



PROTOCOL INTERFACE 



OS{ 



API 


■ API 


API 


API 


API 


■ API 



OS CORE MODULE 



FILE SYSTEM 




FILE SYSTEM ENTITY (EEPROM) 



DECODING/ENCODING 



CRC CHECK 



NUMBER CHECK 



PIN 

VERIFICATION 



MUTUAL 
AUTHENTICATION 



READ/WRITE 



FIG. 5 



CARD ISSUER 21 





ISSUER 
COMMUNICATIONS 
APPARATUS 11 



APPARATUS 
MANUFACTURER 23 



1 



MANUFACTURER 
COMMUNICATIONS 
APPARATUS 13 




CARD STORAGE AREA MANAGER 22 



MANAGER 
COMMUNICATIONS 
APPARATUS 12 



CARD STORAGE 
AREA USER 24 



STORAGE AREA 
SEPARATING 
REGISTRATION 
M APPARATUS 14 



MANAGEMENT 

FILE 
REGISTRATION 
H APPARATUS 15 



FIG. 6 



Obion, Spivak, et al. 
703-413-3000 - jj,r% 
Docket # 2922 1 8USBFCT Z 
Sheet 5 of 12 



S05P0027 



CARD ISSUER FILE SYSTEM 



SYSTEM CODE: SC1 
AREA ID 



FIG. 7 



CARD ISSUER FILE SYSTEM 



SYSTEM CODE: SC1 
AREA ID 



CARD ISSUER CAN PERMIT 
ANOTHER MEMORY AREA 
MANAGER (SERVICE PROVIDER) 
TO RENT OR BUY CERTAIN 
AMOUNT OF MEMORY 



FIG. 8 

CARD ISSUER FILE SYSTEM 

SYSTEM CODE: SC1 
AREA ID 



SEPARATE FILE SYSTEM 
(ANOTHER MANAGER 
MANAGEMENT AREA) 

SYSTEM CODE: SC2 
AREA ID 



FIG. 9 



CARD ISSUER FILE SYSTEM 



SYSTEM CODE: SC1 
AREA ID 



COMMON MANAGER 
MANAGEMENT AREA 



SYSTEM CODE: SCO 
AREA ID 



Obion, Spivak, et al. 
703-413-3000 

Docket # 292218US8Pgr/ *| 2 
Sheet 6 of 12 ~* * 



S05P0027 



FIG. 10 



FILE SYSTEM #0 



SYSTEM CODE SD#0 



AREA ID #0 



n 




□ 







#1 



SD#1 



ID#1 



#1 



#1 



SD#1 



SD#1 



ID#1 



ID#1 



FIG. 11 



REQUEST COMMAND 




AREA ID 




REQUEST PACKAGE 
ft- 








ISSUER KEY Kj 



Obion, Spivak, et al. 
703-413-3000 

Docket # 292218US8PCiy j ^ 
Sheet 7 of 12 



S05P0027 





Obion, Spivak, et al. 
703-413-3000 Q 141 
Docket # 292218U$SpCTI £. 
Sheet 8 of 12 



S05P0027 



FIG. 13 



AREA 0000 DEFINITION BLOCK 



SERVICE 0108 DEFINITION BLOCK 



USER BLOCK 



USER BLOCK 



USER BLOCK 



SECURITY CODE SERVICE 0128 DEFINITION BLOCK 



SECURITY CODE SERVICE DATA BLOCK 



I SERVICE 
I MEMORY 
AREA 



SECURITY CODE SERVICE 
FOR SERVICE 0108 



Obion, Spivak, et al. 
703-413-3000 

Docket # 292218USfflC/M O 

Sheet 9 of 12 



FIG. 14 



S05P0027 



AREA 0000 DEFINITION BLOCK 



AREA 1000 DEFINITION BLOCK 



SERVICE 1108 DEFINITION BLOCK 



SERVICE 11 0B DEFINITION BLOCK 



USER BLOCK 



USER BLOCK 



USER BLOCK 



SERVICE 110C DEFINITION BLOCK 



USER BLOCK 



USER BLOCK 



USER BLOCK 



SECURITY CODE SERVICE 1020 DEFINITION BLOCK 



SECURITY CODE SERVICE DATA BLOCK 



OVERLAP 
SERVICE 



SERVICE 
MEMORY 
AREA 




SERVICE 
MEMORY 
AREA 



SECURITY CODE SERVICE FOR AREA 1000 



Obion, Spivak, et al. S05P0027 
703-413-3000 dO/IO 
Docket # 2922 18US8Pefr/ 1^ 
Sheet 10 of 12 



FIG. 15 



SECURITY 
CODE AREA 


STORAGE AREA 
FOR NUMBER OF FAILED 
AUTHENTICATION 
ATTEMPTS 


SETTING AREA OF 
MAXIMUM ALLOWED 
FAILED AUTHENTICATION 
ATTEMPTS 


ACCESS 
PERMISSION 
FLAG 



SECURITY CODE SERVICE DATA BLOCK 



FIG. 16 




ENABLE ACCESS TO 
APPLICATION/DIRECTORY 




Obion, Spivak, et al. 
703-413-3000 / 4 O 

Docket #292218US8lqr/ 1Z 
Sheet 11 of 12 



S05P0027 



FIG. 17 




ENABLE ACCESS TO 
APPLICATION/DIRECTORY 



1 



UPDATE NUMBER OF FAILED 
AUTHENTICATION ATTEMPTS 



S24 



S25 

^MAXIMUM NUMBER 
OF FAILED AUTHENTICATION ATTEMPTS 
EXCEEDED? 



S26- 



DISABLE ACCESS TO 
APPLICATION/DIRECTORY 



No 



c 



END 



:> 



FIG. 18 

POWER-ON/OS 
BOOT 



Obion, Spivak, et al. 
703-413-3000 

Docket # 2922 1 8US8t 2" / 1 2 
Sheet 12 of 12 

MUTUAL AUTHENTICATION 
/PIN VERIFICATION 



S05P0027 




NO 

AUTHENTICA 
TION PROCESS 



FIG. 19 



OPERATION 
IN SYSTEM 



CHANGE OF SYSTEM 



FILE SYSTEM #1 
SYSTEM CODE: SC1 
AREA ID 

SYSTEM MANAGEMENT 
INFORMATION #1 

PIN RELEASE 
INFORMATION #1 



FILE SYSTEM #2 
SYSTEM CODE: SC2 

AREA ID 

SYSTEM MANAGEMENT 
INFORMATION #2 

PIN RELEASE 
INFORMATION #2 



FILE SYSTEM #3 
SYSTEM CODE: SC3 

AREA ID 

SYSTEM MANAGEMENT 
INFORMATION #3 

PIN RELEASE 
INFORMATION #3 



FIG. 20 



FILE SYSTEM #1 
SYSTEM CODE: SC1 


FILE SYSTEM #2 
SYSTEM CODE: SC2 




FILE SYSTEM #3 
SYSTEM CODE: SC3 




AREA ID 


AREA ID 




AREA ID 




SYSTEM MANAGEMENT 
INFORMATION #1 










PIN RELEASE 
INFORMATION #1 











FIG. 21 



FILE SYSTEM #1 
SYSTEM CODE: SC1 

AREA ID 



FILE SYSTEM #2 
SYSTEM CODE: SC2 

AREA ID 

SYSTEM MANAGEMENT 
INFORMATION #2 

PIN RELEASE 
INFORMATION #2 



FILE SYSTEM #3 
SYSTEM CODE: SC3 

AREA ID 



